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Storing Encrypted and/or Compressed System 
Context Information When Entering a Low- 
Power State 

BACKGROUND 

A system, such as a Personal Computer (PC), may enter a low-power state during 
a period of relative inactivity. For example, a PC might automatically enter a sleep state 
when not being used in order to reduce power consumption. As a result, energy can be 
conserved, the PC may operate more quietly (e.g., because a fan might not need to cool a 
processor), and/or battery life may be extended. 

In some cases, context information may be saved when the system enters the low- 
power state (e,g,, by saving an operating system and memory image to a non-volatile 
storage device). The context information may then be retrieved when the system retums 
to a higher-power state. In this way, the system may retum to the same state it was in 
before entering a low-power state (e.g., the same appUcations may be executing and the 
same files may be opened). 

BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 is a block diagram of hardware and software power management 
components according to some embodiments. 

FIG. 2 is a block diagram including a system and a hard disk drive according to 
some embodiments. 

FIG. 3 is a flow chart of a method according to some embodiments. 

FIG. 4 is a block diagram of an apparatus according to some embodiments. 

FIG. 5 is a flow chart of a method that includes compression according to some 
embodiments. 
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FIG. 6 is a flow chart of a method of returning to a higher-power state according 
to some embodiments. 

FIG. 7 illustrates one example of power state transitions. 

FIG. 8 illustrates a computer system according to some embodiments. 

DETAILED DESCRIPTION 

Some embodiments described here are directed to a "system." As used herein, the 
term "system" may refer to any apparatus that includes one or more processors. 
Examples of a system include a desktop PC, a mobile system, a workstation, a server, a 
set top box (e.g., associated with a digital television receiver), and a game system. 

Moreover, some embodiments are associated with a "low-power state," which 
may refer to any state in which a system consumes less power as compared to a higher- 
power state. For example, the Advanced Configuration and Power Interface (ACPI) 
Specification Revision 2.0b (October, 2002) defines a number of low-power states, 
including a number of sleep states. 

FIG. 1 is a block diagram of hardware and software power management 
components that may be associated with an ACPI system 100 according to some 
embodiments. The system 100 includes platform hardware 110, such as a processor, a 
motherboard, and related components. The system 100 also includes a Basic 
Input/Output System (BIOS) 120 that facilitates start-up operations. The platform 
hardware 110 may exchange information with an ACPI driver 140 via an ACPI BIOS 
130, ACPI registers 132, and/or ACPI tables 134 (and these may be part of the BIOS data 
and contained with the BIOS in tiie same non-volatile memory element, such as flash 
memory). The ACPI driver 140 (e.g., an integral part of an operating system) may in turn 
communicate with an Operating System (OS) kernel 150 and one or more device drivers 
142. The kernel 150 may exchange information with OS Power Management (OSPM) 
code 160 and one or more applications 170 that are executing in the system 100. 
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To save power, the ACPI system 100 may enter a number of different sleep states 
during periods of relative inactivity. A sleep state may comprise, for example, a state in 
which the system 100 consumes an increasingly lower amount of power, application 170 
instructions are not being executed by a processor in the platform hardware 110 (e.g., 
ACPI states SI or S2), and/or the system 100 may appear to be "turned off* to a user. 

In some sleep states, context information associated with the ACPI system 100 
may be saved. For example, when the system enters ACPI state S3, also referred to as 
"suspend to Random Access Memory (RAM)," the OS saves context information to a 
volatile storage device (e.g., to system RAM). When the system enters ACPI state S4, 
also referred to as "suspend to disk" or "hibernate," context information may be stored to 
a non-volatile storage device (e.g., to any device that retains information even when 
external power is not supplied to the device). In ACPI state S5, no context information is 
retained. 

For example, FIG. 2 is a block diagram including a system 210 and a hard disk 
drive 220 according to some embodiments. The hard disk drive 220 is divided such that 
it includes a normal partition 222 and a hidden partition 224. Although a hard disk drive 
220 is illustrated in FIG. 2, any non- volatile storage device might be included instead of, 
or in addition to, the hard disk drive 220. For example, a flash memory unit, a Random 
Access Memory (RAM) xmit having a battery, and/or a network device might be used. 

To save power, the system 210 enters a sleep state when it is not executing 
instructions (eg., the system 210 might enter ACPI state S3 or S4). Moreover, when the 
system 210 enters ACPI state S4, context information associated with the system 210 is 
saved to the disk drive 220 (e.g., by the OS writing information to a file inmiediately 
before entering the sleep state). For example, the context information might be written to 
the hidden partition 224 or some other reserved area of the hard disk drive 220. The 
context information can then be retrieved from the disk drive 220 when the operating 
system exits the sleep state. In this way, the system 210 may retum to the same state it 
was in before entering the sleep state (e.g., the same applications may be executing and 
the same files may be opened). 
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Because the hard disk drive 220 is a non-volatile storage device, however, 
confidential information may be inadvertently exposed. Consider, for example, the case 
where context information is stored to the hidden partition 224 of the hard disk drive 220. 
In this case, the context information may still be present on the hard disk drive 220 even 
after the normal partition 222 is erased. As a result, confidential information contained in 
the context information (e,g., a password, a credit card number, or a Social Security 
number) could be accidentally be revealed to someone who subsequently has access to 
the hard disk drive 220. 

FIG. 3 is a flow chart of a method according to some embodiments. The flow 
charts described herein do not necessarily imply a fixed order to the actions, and 
embodiments may be perforaied in any order that is practicable. The method of FIG. 3 
may be associated with, for example, a system such as the ones described with respect to 
FIGS. 1 and/or 2. Note that any of the methods described herein may be performed by 
hardware, software (including microcode), or a combination of hardware and software. 
For example, a storage medium may store thereon instructions that when executed by a 
machine results in performance according to any of the embodiments described herein. 

At 302, it is determined that a system is to enter a low-power state. The 
determination may be based on, for example, a current system workload or a power 
failure. The determination may also be based on a user action. For example, a period of 
user inactivity might cause the system to enter the low-power state. Similarly, a user may 
activate a button on a PC's case or keyboard to cause the system to enter the low-power 
state. The low-power state might be associated with, for example, an ACPI S3 or S4 
sleep state. 

At 304, system context information is encrypted. According to one embodiment, 
the system context information is encrypted before being saved directly to non- volatile 
memory (e.g., when ftie system enters state S4). According to another embodiment, the 
system initially enters state S3 (and the OS writes the system context information to 
volatile storage, such as system RAM). The BIOS may then arrange for the information 
stored in system RAM to be encrypted before being saved to a non-volatile storage 
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device, such as a hard disk drive. This might be the case, for example, when the BIOS 
arranges for the system to enter a modified S3 sleep state ("S3P") as described with 
respect to FIG. 7. 

The system context information may include, for example, an OS and/or memory 
image. The encryption process may be performed, for example, in accordance with Data 
Encryption Standard (DES) defined by American National Standards Institute (ANSI) 
X3.92 "American National Standard for Data Encryption Algorithm (DEA)" (1981), 
triple-DES as defined by ANSI X9.52 "Triple Data Encryption Algorithm Modes of 
Operation" (1998), or Advanced Encryption Standard (AES) as defined by Federal 
Information Processing Standards (FIPS) publication 197 (2002). Details about these, 
and other, encryption processes can be found in Bruce Schneier, "Applied Cryptography" 
(2nd Ed., 1996). 

The encryption process might also be associated with an encryption key that is 
used to encrypt (and decrypt) the system context information. The encryption key could 
be based on, or associated with, a system, a user, and/or a processor identifier. According 
to some embodiments, the encryption key is associated with a Trusted Platform Module 
(TPM) implementation of the Trusted Computing Platform Alliance Specification 1.1b 
(2000). 

The encrypted system context information is then saved on a non-volatile storage 
device at 306 (e,g,, the OS may store the information or the BIOS may arrange for the 
information to be stored). Because the system context information has been encrypted 
before being saved, it may be more difficult for someone who subsequently has access to 
the non-volatile storage device to obtain confidential information. 

FIG. 4 is a block diagram of an apparatus 400 according to some embodiments. 
The apparatus 400 includes an encryption engine 410 that may be used to encrypt system 
context information before it is saved (e.g., to a hard disk drive). The encryption engine 
410 may be, for example, a software unit or a hardware device adapted to encrypt a 
stream of information. Note that the system 400 may fiirther include a decryption engine 
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(not illustrated in FIG. 4) to decrypt the encrypted system context information after it is 
retrieved (e.g., when the system is ready to return to a higher-power state). 

The amount of system context information that is needed to appropriately return 
to a higher-power state can be relatively large (whether or not is has been encrypted). As 
a result, it may take a significant amoimt of storage space and time to save and/or retrieve 
the information (e,g,, several gigabytes of information might need to be saved to or 
retrieved fi"om a hard disk drive). Moreover, in some cases the system context 
information might be saved to non-volatile memory because of a system power failure 
(e.g., the power failure might have triggered a transition to a low-power state). As a 
result, the maximum amount of information that can be saved might be limited by the 
amount of power available from a back-up power source. To reduce the amount of 
information that needs to be saved, FIG. 5 is a flow chart of a method that includes 
compression according to some embodiments. 

As before, it is determined that a system is to enter a low-power state at 502 (e.g., 
it may be determined that the system will enter an ACPI S3 or S4 sleep state based on a 
current system workload, a user action, and/or a power failxire). 

At 504, system context information is compressed. For example, a software or 
hardware unit may use a compression algorithm to reduce the amount of system context 
information. As before, the system context information might be compressed before 
being saved directly to non-volatile memory (e.g., when the system enters state S4). 
According to another embodiment, the system initially enters state S3 (and the OS writes 
the system context information to volatile storage, such as system RAM). The BIOS may 
then arrange for the information stored in system RAM to be compressed before being 
stored on a non-volatile storage device, such as a hard disk drive. 

At 506, the compressed system context information is encrypted (e.g., the BIOS 
might arrange for the compressed system context information to be encrypted). Note that 
according to other embodiments, no encryption is performed on the compressed system 
context information. 
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The encrypted and compressed system context information is then saved on a 
non-volatile storage device at 508. Because the system context information has been 
compressed before being saved, tiie amount of storage space and time required to save 
the information may be reduced (and, as a result, the amount of power that needs to be 
available from a back-up power source may be reduced). 

At 510, it is arranged for the system to enter the low-power state (e.g., an ACPI 
process or device may arrange for the system to enter the S3 or S4 sleep state). 

After the system enters the low-power state, it may be determined that system 
should retum to a higher-power state. Such a determination may be based on, for 
example, a current system workload, a user action (e,g,, a user may activate a button on a 
PC's case or keyboard), and/or a retum of power. FIG. 6 is a flow chart of a method of 
returning to the higher-power state according to some embodiments. 

At 602, encrypted system context inforaiation is retrieved from a non-volatile 
storage device (e.g., from a partition on a hard disk drive). At 604, the encrypted system 
context information is decrypted (e.g,, using any of the processes, devices, and/or keys as 
described with respect to the encryption process). Note that according to some 
embodiments, the system context information may also be de-compressed. 

At 606, it is arranged for the system to enter the higher-power state in accordance 
with the system context information. For example, the system may retum to the same 
state it was in before entering the low-power state (e.g., the same applications may be 
executing and the same files may be opened). 

FIG. 7 illustrates one example of power state transitions. Note that in this 
example, there two versions of an ACPI non-sleep state (SO). In either case, the system 
may dispatch and execute application instructions and respond to extemal events in 
substantially real time. 

When the system is in a "visual on" version of the non-sleep state, a display 
monitor may be on and the system may operate in a normal manner. A user may then 
activate a pushbutton (PB) to transition the system to a "visual ofP' version of the non- 
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sleep state. While in visual off, the display monitor may be tumed off and certain 
processing associated with the display might be reduced (e.g., so that a fan associated 
with a graphics card does not need to remain on). Note that the system may still execute 
instructions in visual off (e.g., to arrange for a digital television signal to be recorded or 
to provide MP3 files to a remote stereo device). The user can then re-activate the 
pushbutton to retum to visual on. 

An Alternating Current (AC) power failure or user inactivity for a period of time 
{e.g. , if the user does not press a key on a keyboard or move a mouse for ten minutes) 
causes the system to enter an ACPI S3 sleep state. When entering the S3 sleep state, an 
OS may notify applications and drivers that are currently executing (e.g,, so that 
appropriate actions can be taken to prepare for the transition) and arrange for system 
context information to be stored in volatile memory. Because the system context 
information is stored in volatile memory, the latency associated with a retum to SO may 
be reduced as compared to an S4 sleep state (e.g., because the system context information 
may be retrieved from volatile memory more quickly as compared to non-volatile 
memory). An activation of a pushbutton by a user, a retum of AC power, and/or a wake 
event (e.g., an event that occurs when a pre-determined condition is met) causes the 
system to retum to visual on or off as appropriate. 

When it is determined that the system has entered the S3 sleep state (e.g., based 
on information the OS writes into an ACPI register), a BIOS may arrange for some or all 
of the system context information in volatile memory to be encrypted and/or compressed 
by a streaming engine 710 and saved to non-volatile memory. When the save is 
complete, the system can be considered to be in a "persistent" version of the ACPI S3 
sleep mode (S3P). Note that the OS and applications executing on the system may not be 
aware that the system has transitioned from the S3 to the S3P sleep state. Also note that 
the BIOS may not have same knowledge about memory usage as compared to the OS 
and, as a result, compression might be beneficial if the BIOS needs to copy an entire 
memory image when entering S3P. In the event of an Uninterruptible Power Supply 
(UPS) being tumed off or failing, the system may enter an ACPI G3 not-powered state. 
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Upon a return of AC power, the BIOS arranges for the encrypted system context 
information from nonvolatile memory to be decrypted and/or decompressed by a 
streaming engine 720 and stored in volatile memory. The system is once again, 
therefore, in an ACPI S3 sleep state and the system context information in volatile 
memory may be used to return to a non-sleep state (e.g., without the OS or applications 
being aware that either the S3P or G3 states had been entered). Although FIG. 7 uses an 
AC power failure to illustrate a trigger event that results in a transition to the S3P state, 
other types of events could also trigger the S3P state. 

FIG. 8 illustrates a computer system 800 according to some embodiments. The 
computer system 800 includes an apparatus 810 that may be in a low-power or higher- 
power state, such as an ACPI PC. The apparatus 810 further includes an encryption 
and/or compression engine 812 that may encrypt and/or compress system context 
information before it is saved on a hard disk drive 820. According to other embodiments, 
the apparatus 810 instead saves the encrypted system context information on anotiier type 
of non-volatile storage device. Note that the apparatus 810 may further include a 
decryption and/or de-compression engine (not shown in FIG. 8) to decrypt and/or de- 
compress system context information retrieved from the hard disk drive 820. The 
apparatus 810 may further communicate with one or more remote devices 830 (e.g., a 
television decoder or stereo device) through a network. 

The following illustrates various additional embodiments. These do not constitute 
a definition of all possible embodiments, and those skilled in the art will understand that 
many other embodiments are possible. Further, although the following embodiments are 
briefly described for clarity, those skilled in the art will understand how to make any 
changes, if necessary, to the above description to accommodate these and other 
embodiments and appUcations. 

Although specific types of system context information and power states have been 
described herein, embodiments may be associated with any type of context information 
and/or power state. 
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Moreover, some embodiments described herein have been associated with system 
context information that is saved on a non-volatile storage device. Some embodiments, 
however, may also be associated with a volatile storage device. For example, system 
context information might be compressed before being saved to a volatile storage device 
(e,g., when entering an ACPI S3 sleep state) to reduce the space and time required to save 
theinforaiation. 

According to some embodiments, the encryption and/or compression of system 
context information may be configurable by user. For example, a user in a home 
environment may decide to reduce the latency of low-power state transitions by not 
implementing the encryption process (e.g., because he or she is not concerned about 
confidential information or does not expect anyone else to have access to the PC's hard 
disk drive). A user in a corporate environment, on the other hand, might decide that the 
enhanced security provided by the encryption process is worth a latency increase. 

The several embodiments described herein are solely for the purpose of 
illustration. Persons skilled in the art will recognize from this description other 
embodiments may be practiced with modifications and alterations limited only by the 
claims. 
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